← Back

Ib Wrb302n Firmware

ib-wrb302n_firmware

Vendor: Iball • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-20008
1Iball
1Ib Wrb302n Firmware
Nov 21, 2024
May 28, 2019
N/A· v4
6.8 MEDIUM· v3
2.1 LOW· v2
iBall Baton iB-WRB302N20122017 devices have improper access control over the UART interface, allowing physical attackers to discover Wi-Fi credentials (plain text) and the web-console password (base64) via the debugging...Show more
iBall Baton iB-WRB302N20122017 devices have improper access control over the UART interface, allowing physical attackers to discover Wi-Fi credentials (plain text) and the web-console password (base64) via the debugging console.Show less
CVE-2018-6355
1Iball
1Ib Wrb302n Firmware
Nov 21, 2024
Jan 30, 2018
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
/goform/setLang on iBall 300M devices with "iB-WRB302N_1.0.1-Sep 8 2017" firmware has Unauthenticated Stored Cross Site Scripting via the lang parameter.